Back to Basics – Security Testing for Defense

Date: 09/15/2022
Start Time: 9:30am
End Time: 12:30pm
Room: Carson 3-4
Track: Information Security
Speakers: Scott Melnick, Gus Fritschie

In this three-hour workshop you will learn a variety of security testing techniques that you can take directly back to your organization to increase your security posture.  The workshop will be a combination of classroom and hands-on.  In order to get the most out of the hands-on portion please bring a laptop (with a wireless card) with Kali Linux (https://www.kali.org/) installed, either as a virtual machine or directly on the system.  This will allow you to participate in the class exercises.  Please install and test this prior to the workshop, there will not be time for troubleshooting support during the session.  If you have any questions, please reach out to gus.fritschie@bulletproofsi.com. 

The classroom portion of the workshop will cover the testing process, what to do, and more importantly what not to do.  We will cover the discovery, exploration and scanning phases of the assessment process.  Tools we will cover include:

• Nmap
• Nessus
• Burp Suite
• Metasploit
• Bloodhound

A test environment will be setup for you to practice what you learn.  You will then be able to take these techniques back to your organizations and perform basic, proactive security testing allowing you to identify and remediate vulnerabilities before an attacker does.